Trustwave
Information Security Advisor, AMS
Trustwave, Palo Alto, California, United States, 94306
Posted Wednesday, July 31, 2024 at 11:00 PMAbout TrustwaveTrustwave is a leading cybersecurity and managed security services provider focused on threat detection and response. We uncover threats that others can’t and respond quicker than others can to protect against the devastating impacts of cyberattacks. We’re a world-class team of cyber consultants, threat hunters, and researchers serving clients in 96 countries. At Trustwave, you can learn alongside the best, make a personal impact on a global scale, and solve new challenges every day. Learn more about us at
https://www.trustwave.com .Position OverviewThe Information Security Advisor function provides a single point of contact for all security-related activities for designated customer accounts and takes a key leadership role by providing extensive hands-on guidance in the development and implementation of security policies as related to designated accounts. The role extends further by providing hands-on consultative security expertise to the customer in making and recommending key decisions in the area of security, which may include security architectural work, operational support, and other duties in support of the customer. As it pertains to consultancy, management, and focus varies greatly from account to account as there are variable customer and contractual requirements. The Information Security Advisor function possesses a combination of skills including industry-recognized certification (CISSP), general security expertise, and project management skills.Duties:Provide a single point of contact to the account management and delivery teams for all operational security-related activities for the customer account. Maintain and oversee relationships for all delivery organizations providing security support.Manage the implementation of the Security Agreement. Proactively drive operational compliance on the account. Provide in-house consultancy on information risk management matters and advise on the implementation of security controls on the account.Oversee the implementation and management of operational security activities, processes, and policies as required (e.g., Security Incident Management Process).Track and assist in the management of the resolution of reported operational security issues. Recommend actions, reviewing plans and monitoring progress of remedial actions. Manage to resolution security risks identified as a result of reviews and audits, changes in Trustwave or customer environment, changes in operating practices or processes, changes in technology, etc.On a regular basis (recommended at least monthly), meet with the account team to review security status, review any risks, issues, incidents, outstanding activities, current and planned changes.Provide informal security assessments for Trustwave delivered processes or architectures to ensure that contractual requirements for information risk management and security controls are satisfied. Regularly review the delivery environment of the account to identify security risks to Trustwave or the customer.Participate in change control (review and/or approval) activities for changes that may impact the customer's security posture.Serve as a dedicated focal point for managing security or anti-virus incidents that occur in the customer's environment.Provide security-related education to ensure security awareness and knowledge of customer applicable security policies and processes. Answer questions and concerns regarding customer applicable security policies and processes.Ensure that opportunities to improve security are identified. Research new security technologies and practices and recommend additional security services as required.Offer executive-level presentations for the account or client management and proactively keep Trustwave senior leadership abreast of all account concerns.Skills and Knowledge Requirements:Must have advanced skills/knowledge in several of the following areas:Information Security OperationsProject ManagementNetwork Security Architecture & AdministrationMust understand TCP/IP networking and routers/access control devicesMust understand vulnerability managementBroad understanding of threat hunting and incident response activitiesMust have intermediate knowledge of common technologies (SIEM, EDR, FW, IDS/IPS, AV, SEG, DLP, etc.)SIEM technologies (Splunk, QRadar, LogRythm, Sentinel, etc.).
Deep knowledge of Sentinel would be a high preference.Firewall technologies (Palo Alto, Fortinet, Cisco, Check Point, Juniper, etc.)Endpoint security technologies (Microsoft Defender, Carbon Black, Cybereason, Cortex, Crowdstrike, etc.)Microsoft security suite preferred (Sentinel, Azure, MDATP, etc.)Microsoft SC-200 certification or other related Microsoft certifications.Skills:Excellent analytical thinking and problem-solving skillsSelf-managed/directed and team-orientedDeadline and detail-orientedHighly self-motivatedRequired:At least 5 years of experience in Information Security or NetworkingCertification(s) in Security Sector (CISSP, GIAC, Security+, Cisco, etc.)Education:A high school diploma or equivalent is required; a college or university degree is a plus.This is a remote opportunity open to anyone legally authorized to work in the United States and/or Canada. Guided by our flexible workplace philosophy,
Moments That Matter , people gather in the office when in-person interaction is most impactful; full-time remote employees may be asked to travel occasionally based on the needs of the team and the business.Trustwave is an Equal Opportunity Employer. We're committed to treating everyone with respect, one of our core TRUST Values, and strive to create a culture that empowers all Trustees to be their best, most authentic selves. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability or veteran status, age, or any other federally protected class.
#J-18808-Ljbffr
https://www.trustwave.com .Position OverviewThe Information Security Advisor function provides a single point of contact for all security-related activities for designated customer accounts and takes a key leadership role by providing extensive hands-on guidance in the development and implementation of security policies as related to designated accounts. The role extends further by providing hands-on consultative security expertise to the customer in making and recommending key decisions in the area of security, which may include security architectural work, operational support, and other duties in support of the customer. As it pertains to consultancy, management, and focus varies greatly from account to account as there are variable customer and contractual requirements. The Information Security Advisor function possesses a combination of skills including industry-recognized certification (CISSP), general security expertise, and project management skills.Duties:Provide a single point of contact to the account management and delivery teams for all operational security-related activities for the customer account. Maintain and oversee relationships for all delivery organizations providing security support.Manage the implementation of the Security Agreement. Proactively drive operational compliance on the account. Provide in-house consultancy on information risk management matters and advise on the implementation of security controls on the account.Oversee the implementation and management of operational security activities, processes, and policies as required (e.g., Security Incident Management Process).Track and assist in the management of the resolution of reported operational security issues. Recommend actions, reviewing plans and monitoring progress of remedial actions. Manage to resolution security risks identified as a result of reviews and audits, changes in Trustwave or customer environment, changes in operating practices or processes, changes in technology, etc.On a regular basis (recommended at least monthly), meet with the account team to review security status, review any risks, issues, incidents, outstanding activities, current and planned changes.Provide informal security assessments for Trustwave delivered processes or architectures to ensure that contractual requirements for information risk management and security controls are satisfied. Regularly review the delivery environment of the account to identify security risks to Trustwave or the customer.Participate in change control (review and/or approval) activities for changes that may impact the customer's security posture.Serve as a dedicated focal point for managing security or anti-virus incidents that occur in the customer's environment.Provide security-related education to ensure security awareness and knowledge of customer applicable security policies and processes. Answer questions and concerns regarding customer applicable security policies and processes.Ensure that opportunities to improve security are identified. Research new security technologies and practices and recommend additional security services as required.Offer executive-level presentations for the account or client management and proactively keep Trustwave senior leadership abreast of all account concerns.Skills and Knowledge Requirements:Must have advanced skills/knowledge in several of the following areas:Information Security OperationsProject ManagementNetwork Security Architecture & AdministrationMust understand TCP/IP networking and routers/access control devicesMust understand vulnerability managementBroad understanding of threat hunting and incident response activitiesMust have intermediate knowledge of common technologies (SIEM, EDR, FW, IDS/IPS, AV, SEG, DLP, etc.)SIEM technologies (Splunk, QRadar, LogRythm, Sentinel, etc.).
Deep knowledge of Sentinel would be a high preference.Firewall technologies (Palo Alto, Fortinet, Cisco, Check Point, Juniper, etc.)Endpoint security technologies (Microsoft Defender, Carbon Black, Cybereason, Cortex, Crowdstrike, etc.)Microsoft security suite preferred (Sentinel, Azure, MDATP, etc.)Microsoft SC-200 certification or other related Microsoft certifications.Skills:Excellent analytical thinking and problem-solving skillsSelf-managed/directed and team-orientedDeadline and detail-orientedHighly self-motivatedRequired:At least 5 years of experience in Information Security or NetworkingCertification(s) in Security Sector (CISSP, GIAC, Security+, Cisco, etc.)Education:A high school diploma or equivalent is required; a college or university degree is a plus.This is a remote opportunity open to anyone legally authorized to work in the United States and/or Canada. Guided by our flexible workplace philosophy,
Moments That Matter , people gather in the office when in-person interaction is most impactful; full-time remote employees may be asked to travel occasionally based on the needs of the team and the business.Trustwave is an Equal Opportunity Employer. We're committed to treating everyone with respect, one of our core TRUST Values, and strive to create a culture that empowers all Trustees to be their best, most authentic selves. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability or veteran status, age, or any other federally protected class.
#J-18808-Ljbffr